This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft File: TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json) Hash identifier: 1rOlaDxQ2WgxOdYRn5aF02A0dTtWHqn7H+2ScvXjm/E= Subject key identifier: 4E:02:D1:44:5E:69:17:31:DF:56:B1:E7:CC:06:7B:D8:72:93:7B:00 Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E Certificate issuer: /CN=4d2b4196956a4315340f827d992a0f7a29284c3e Certificate serial: 019AF276A47E1265ABE1426ED620FE15F795 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft Manifest number: 13F1 Signing time: Sat 06 Dec 2025 07:00:52 +0000 Manifest this update: Sat 06 Dec 2025 07:00:52 +0000 Manifest next update: Sun 07 Dec 2025 07:00:52 +0000 Files and hashes: 1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: iKMWPMhUGJSRFhII9utB7Qwv5IGtNIyvheTnVIaZAxU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:a4:7e:12:65:ab:e1:42:6e:d6:20:fe:15:f7:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e Validity Not Before: Dec 6 07:00:52 2025 GMT Not After : Dec 7 07:00:52 2025 GMT Subject: CN=4e02d1445e691731df56b1e7cc067bd872937b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:45:fc:68:b3:46:93:d3:ac:d1:b6:ea:7d:71: 02:33:b0:c2:c3:a8:85:9c:6b:18:8f:23:08:70:81: 96:d0:b3:02:41:ea:83:9e:e7:f0:b3:84:b1:97:00: 35:04:5e:bf:f2:d2:d2:ae:da:e9:da:06:ac:b1:05: 12:be:33:04:1a:b0:9d:06:e6:a8:e5:cd:0e:9a:ba: f3:df:3e:1e:af:23:be:ea:df:92:cc:43:30:6c:76: 53:6f:0c:40:c2:db:1c:a8:d9:08:f1:eb:ba:74:14: f8:bb:a1:82:1b:91:50:60:d2:8b:85:ec:f7:5a:43: 6b:bc:be:45:9b:bf:58:c7:b7:8a:86:b5:09:ca:06: 20:ff:b2:cb:af:b8:73:5b:98:c2:87:a0:4f:7e:de: e5:83:58:51:70:00:b2:45:ec:1f:4c:03:73:86:c0: 51:d2:d0:ba:26:e2:db:d1:0e:a0:3f:db:e3:11:dd: 49:a3:68:9f:ca:02:85:73:89:da:c5:84:a4:a5:18: 5b:3f:e9:ec:21:99:37:42:1e:e3:8c:11:78:8f:0e: 85:24:66:0d:f6:3b:50:db:26:b7:e6:b9:d4:f8:3d: 5f:1b:70:f8:4e:78:3e:49:23:ed:2e:55:a6:85:c6: e7:aa:fe:8e:3e:35:69:a1:93:7a:96:8e:6c:6d:69: e4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:02:D1:44:5E:69:17:31:DF:56:B1:E7:CC:06:7B:D8:72:93:7B:00 X509v3 Authority Key Identifier: keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:6e:16:48:81:2f:80:47:aa:93:59:77:f2:69:8a:14:b6:ab: 3c:a5:f7:98:a1:fc:59:a6:5e:21:fa:3b:42:9c:6c:aa:15:86: e9:1e:13:92:51:f7:9d:ae:b1:57:b3:08:64:7f:90:62:ce:00: e4:7b:94:9a:88:98:07:47:78:31:23:3c:a2:63:ea:2b:55:62: da:fe:b3:ba:b5:ac:29:a2:14:6b:62:40:6d:94:a2:57:d1:bf: ff:72:20:43:bf:2e:d6:25:b8:bc:8a:ba:04:1e:7b:e1:54:7e: ca:9a:37:87:4d:34:92:56:2e:77:e3:1a:99:97:60:6c:5e:a5: 33:d8:32:00:4e:24:73:3e:7b:a3:00:79:24:fe:0e:5e:b6:46: 2c:c1:a4:d9:a5:db:a8:88:b5:8e:6d:30:76:4e:0a:39:ca:89: 6d:26:86:2d:3b:c7:0e:d6:de:49:50:5c:4b:e9:95:3b:52:ae: 7e:82:83:2f:56:8a:93:6d:0f:4f:09:f0:95:f3:99:81:33:cf: 74:c3:15:c1:38:15:48:d1:fa:5f:4d:24:cb:91:db:4a:5e:b7: 28:b3:be:c3:1f:c8:72:38:b5:03:8f:dd:d1:89:30:5e:30:a2: ff:bb:19:0a:62:d2:0b:49:f0:d6:a6:bc:9a:3f:52:02:68:c7: 49:da:9d:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydqR+EmWr4UJu1iD+FfeVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMmI0MTk2OTU2YTQzMTUzNDBmODI3ZDk5MmEwZjdhMjky ODRjM2UwHhcNMjUxMjA2MDcwMDUyWhcNMjUxMjA3MDcwMDUyWjAzMTEwLwYDVQQD Eyg0ZTAyZDE0NDVlNjkxNzMxZGY1NmIxZTdjYzA2N2JkODcyOTM3YjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEX8aLNGk9Os0bbqfXECM7DCw6iF nGsYjyMIcIGW0LMCQeqDnufws4SxlwA1BF6/8tLSrtrp2gassQUSvjMEGrCdBuao 5c0Omrrz3z4eryO+6t+SzEMwbHZTbwxAwtscqNkI8eu6dBT4u6GCG5FQYNKLhez3 WkNrvL5Fm79Yx7eKhrUJygYg/7LLr7hzW5jCh6BPft7lg1hRcACyRewfTANzhsBR 0tC6JuLb0Q6gP9vjEd1Jo2ifygKFc4naxYSkpRhbP+nsIZk3Qh7jjBF4jw6FJGYN 9jtQ2ya35rnU+D1fG3D4Tng+SSPtLlWmhcbnqv6OPjVpoZN6lo5sbWnkNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE4C0UReaRcx31ax58wGe9hyk3sAMB8GA1UdIwQY MBaAFE0rQZaVakMVNA+CfZkqD3opKEw+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8zYzAyYjktMjVjNC00ODhmLWE5NzUt NDU1YTBhNjFmMWVhLzEvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8zYzAyYjktMjVjNC00ODhmLWE5NzUtNDU1YTBhNjFmMWVh LzEvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoW4WSIEv gEeqk1l38mmKFLarPKX3mKH8WaZeIfo7QpxsqhWG6R4TklH3na6xV7MIZH+QYs4A 5HuUmoiYB0d4MSM8omPqK1Vi2v6zurWsKaIUa2JAbZSiV9G//3IgQ78u1iW4vIq6 BB574VR+ypo3h000klYud+MamZdgbF6lM9gyAE4kcz57owB5JP4OXrZGLMGk2aXb qIi1jm0wdk4KOcqJbSaGLTvHDtbeSVBcS+mVO1KufoKDL1aKk20PTwnwlfOZgTPP dMMVwTgVSNH6X00ky5HbSl63KLO+wx/Icji1A4/d0YkwXjCi/7sZCmLSC0nw1qa8 mj9SAmjHSdqdEg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:31:50 2025 by rpki-client